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LISTING OF THE CLAIMS: 
1 . (Currently Amended) A method for protecting a computer network from 
vulnerabilities, comprising: 

quarantining a computer system s ee k i ng to conn e ct to from said computer 
network bv said computer system raising a firewall resident on the computer system 
whenever physically connecting or reconnecting said computer system until said 
quarantined computer system Is remediated , wherein said quarantine of said computer 
system Is self-initiated, and wherein said firewall allows specified permitted 
communications while blocking all other communications : [[and]] 

determining if the computer system reguires remediation, wherein the 
determination is perfonned bv a component of the computer network communicating 
with the computer system, and wherein the communication between the computer 
system and the component is one of the specified permitted communications: 

remediating the computer system using information from the component of the 
computer network in accordance with the determination: and 

upon completing remediation of said quarantined computer system, the 
computer system lowering the firewall to allow all communication between conn e ct i ng 
sa i d r e m e d i at e d the c omputer system te^aid - and the computer network. 

2-4. (Canceled) 
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5. (Currently Amended) The method of claim 1[[4]], wherein s a i d firewa ll- p e rm i ts _ a 
specified permitted communication between the computer system and the component 
of the network includes a flow of vulnerability resolution information th e r e through . 

6. (Canceled) 
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7. (Currently Amended) For a computer network comprised of a plurality of computer 
systems and a client remediation server coupled to each one of said plurality of 
computer systems, said client remediation server remediating said computer network by 
resolving vulnerabilities in said plurality of computer systems, a method for protecting 
said remediated computer network from unresolved vulnerabilities, comprising: 

if one of said computer systems of said remediated computer network is 
Dhvsicallv d isconnected from said remediated computer network, upon a subsequent 
Physical re-connection of said computer system to said remediated computer network, 
said computer system raising a firewall resident on the computer svstem to temporarily 
limit[[ing]] exchanges between said remediated computer network and said computer 
svstemrrs H until said computer system has been verified by said remediation server. 
wherein said computer system lowers the firewall upon said remediation server verifying 
said computer system . 

8. (Currently Amended) The method of claim 7, wherein exchang e s b e tw ee n sa i d 
comput e r sy s t e m and said remed i at e d comput e r n e twork a r e li mited unt il sa i d comput e r 
syst e m has b ee n ch e ck e d, by sa i d cl ie nt r e med i at i on s e rv e r, the verification includes 
checking for pending remediations for said computer system . 

9. (Canceled) 
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10. (Currently Amended) The method of claim 7[[9]], wherein sa id comput e r s yst e m 
ra i sing a fir e wa ll upon r e conn e ct i ng to sa i d remed i at e d comput e r n e twor l < furth e r 
compr i s e s limiting exchanges between said remediated computer network and said 
computer system includes filtering out non-remediation-related traffi c b e twe e n sa i d 
comput e r syst e m and said r e m e d i ated comput e r network . 

11. (Currently Amended) The method of claim 8[["10]]. a nd furth e r compr isi ng 
r e mov i ng sa i d l i m i tation s on e xchang e s b e tw ee n said comput e r syst e m and sa i d 
fe m e d ia t e d comput e r n e twork upon wherein verifying said computer system includes 
said client remediation server executing said pending remediations for said computer 
system. 

12. (Canceled) 

13. (Currently Amended) The method of claim 7[[12]], wherein removing said 
l i mitat i ons on e xchang e s b e twe e n sa i d comput e r syst e m and said r e m e diat e d comput e r 
n e twork furth e r compr i s e s lowering the firewall p e rm i tting permits non-remediation- 
related traffic to pass between said computer system and said remediated computer 
network without filtering. 
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14. (Currently Amended) A method for protecting a computer network from nefarious 
software associated W\th a computer system being connected to said computer 
network, comprising: 

upon initiating a connection between said computer system and said computer 
network, said computer system q uarantining sa i d comput e r system itself from said 
computer networ k by raising a firewall resident on said computer system, wtierein tlie 
firewall allows specified permitted communications and blocks all other communications 
with said computer network : 

performing a scan on said computer system with information from a component 
of said computer network : and 

lifting said quarantine of said computer system by said computer system 
lowering the firewall upon completing a_[[the]]removal of any nefarious software 
detected by said scan. 

15-17. (Canceled) 

18. (Currently Amended) The method of claim 14I[15]], wherein said firewa ll p e rm i ts 
traffic between said computer system and said component of said computer network if 
said traff i c is related to said nefarious software detection and removal and is a specified 
pemiitted communication allowed to pass through the firewall . 

19. (Original) The method of claim 18, wherein said nefarious software is a computer 
virus. 

14 

40330.01/4059.01200 



Attorney Docket No: 4121-37300 



20. (Original) The method of claim 18, wherein said nefarious software is a worm. 
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21 . (Currently Amended) A remediated computer network comprising: 

a computer system; and 

a client remediation server coupled to said computer system, said client 
remediation server configured to p e riodical l y resolve vulnerabilities in said computer 
system whenever said computer system physically connects or reconnects to said 
computer network : 

wherein said computer system includes a firewall for p e r i od i ca ll y isolating said 
computer system[[,]] from said remediated computer networ k upon said computer 
system physically connecting or reconnecting to said computer network , until said client 
remediation server resolves vulnerabilities of said computer system. 

22. (Currently Amended) The apparatus computer network of claim 21 , wherein said 
computer system is configured to raise said firewall to isolate said computer system 
from said remediated computer network whenever said computer system disconnects 
from and subsequently physically reconnects to said computer network. 

23. (Currently Amended) The apparatus computer network of claim 22, wherein said 
computer system is configured to raise said firewall upon each power-up thereof. 

24. (Currently Amended) The apparatus computer network of claim 22, wherein said 
remediated computer network is a local area network (LAN) and said computer system 
is configured to raise said firewall upon initiating registration with said LAN. 
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25. (Currently Amended) The apoaratue computer network of claim 22, wherein said 
remediated computer network is a wide area network (WAN) and said computer system 
is configured to raise said firewall upon initiating registration with said WAN. 

26. -29. (Canceled) 
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30. (Currently Amended) A computer system, comprising: 

a processor subsystem; 

a memory subsystem coupled to said processor subsystem; 

at least one application residing in said memory subsystem and executable by 
said processor subsystem; and 

a firewall switchable between a closed position in which traff i c to and/or from 
s aid comput e r s y s t e m Is r es tr i ct e d and an open position i n wh i ch traff i c to and/or from 
sa i d comput e r syst e m i s unr e str i ct e d ; 

wherein said firewall is configured to switch Into said closed position upon power- 
up of said computer system and upon initiation of registration with a computer network; 
and 

wherein all traffic to and from said computer system is generally restricted when 
said firewall Is switched to said closed position, and where said firewall permits specific 
access through said firewall including at least to locate and communicate with a 
remediation server of said computer network when said firewall is switched to said 
closed position: and 

wherein the firewall is configured to switch from said closed position to said open 
position only upon said remediation server verifying that said computer system meets 
standards of said network. 

31 . (Canceled) 
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32. (New) The computer system of claim 30, wherein the specific access through the 
firewall to locate and communicate with said remediation server of said computer 
network is the only specific access permitted through said firewall when said firewall is 
switched to said closed position. 

33. (New) The computer system of claim 30, wherein communication with said 
remediation server includes traffic for executing pending remediations and traffic for 
executing supplementary remediations determined necessary by said client remediation 
server. 

34. (New) The computer system of claim 30, wherein initiating registration with said 
computer network is initiated upon physically connecting said computer system with 
said computer network. 

35. (New) The method of claim 1 , wherein physically reconnecting the computer 
system to the computer network Includes one of detaching a physical communication 
link between the computer system and the computer network and subsequently 
attaching the physical communication link or powering down the computer system while 
maintaining the physical communication link and subsequently powering up the 
computer system. 
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36. (New) The method of claim 35, wherein remediating the computer system 
includes performing supplemental remediations if the physical communication link is 
detached and subsequently attached. 

37. (New) The method of claim 1, wherein remediating the computer system 
includes perfomiing remediations scheduled for the computer system subsequent to the 
computer system disconnecting from the computer network. 

38. (New) The method of claim 1 , wherein determining if the computer system 
requires remediation includes determining if the computer system has any pending 
remediations. 

39. (New) The method of claim 5, wherein a specified permitted communication 
between the computer system and the component of the network includes information 
needed for the computer system and the computer network to confirm that the 
computer system is attempting to re-enter its home network. 

40. (New) The method of claim 5, wherein a specified permitted communication 
between the computer system and the component of the network includes information 
identifying the computer system and the component of the network. 
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41. (New) The method of claim 10, wherein limiting exchanges between said 
remediated computer network and said computer system includes allowing traffic 
needed for the computer system and the computer network to confirm that the 
computer system is attempting to re-enter its home network and allowing other 
remediation related traffic between the client remediation server and the computer 
system. 

42. (New) The method of claim 10, wherein limiting exchanges between said 
remediated computer network and said computer system includes allowing traffic 
needed to identify the computer system and the client remediation server and allowing 
other remediation related traffic between the client remediation server and the computer 
system. 

43. (New) The method of claim 14, wherein the initiation of the connection Is 
responsive to a physical communication link being connected between said computer 
system and said computer network subsequent to the communication link being 
disconnected. 

44. (New) The method of claim 14, wherein said quarantine of said computer system 
is lifted upon said component of said computer network further completing an execution 
of any pending remediations for said computer system. 
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45. (New) The method of claim 14, wherein lowering the firewall generally permits all 
traffic to pass between said computer system and said remediated computer networit 
without filtering by the firewall. 
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